This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft File: uoGySm1gML8IjeowyaWTL-vcanw.mft (raw, json) Hash identifier: Zoy9q8qj+bA4xP969lsNtgLVg9TBgBCKoffswvvOrSo= Subject key identifier: AF:EF:34:09:43:9E:53:D7:3B:89:B5:01:DF:B4:EE:5E:64:76:E3:58 Authority key identifier: BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C Certificate issuer: /CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c Certificate serial: 019BF688086DB29F5F5D0FD20561B3414190 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft Manifest number: 02B0 Signing time: Sun 25 Jan 2026 19:01:08 +0000 Manifest this update: Sun 25 Jan 2026 19:01:08 +0000 Manifest next update: Mon 26 Jan 2026 19:01:08 +0000 Files and hashes: 1: uoGySm1gML8IjeowyaWTL-vcanw.crl (hash: Vv+kccpgbUz6ocQ0i7O4FVtWk/4Hs2QZo6zzLig5s0w=) 2: zl-n2q1Zb7EgYohA26XnxYXqdxE.roa (hash: BY/YVHNSQVEAmKd+rhuDTBW07jn5TB4TSJNB9lFmcSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:08:6d:b2:9f:5f:5d:0f:d2:05:61:b3:41:41:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c Validity Not Before: Jan 25 19:01:08 2026 GMT Not After : Jan 26 19:01:08 2026 GMT Subject: CN=afef3409439e53d73b89b501dfb4ee5e6476e358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:25:d3:ff:71:a3:18:01:11:38:20:df:66:43: a6:2c:aa:9a:56:99:7b:27:76:e9:10:71:82:bd:6a: 6b:b7:78:87:c5:fb:19:8d:88:d2:d8:f7:f9:11:6f: 1d:27:8f:0e:ee:6e:be:9f:c5:09:31:27:b1:ec:69: cc:8e:00:63:bd:37:4e:09:58:72:3e:2a:a2:08:79: 60:bf:ed:e1:42:29:29:a8:f4:20:f5:44:dd:56:43: 68:6d:9c:dd:98:3f:09:b6:bb:8a:90:3a:65:54:a1: 98:07:61:b0:1e:bc:bc:9a:1d:67:d7:9d:f0:38:26: 39:dc:ee:ed:ca:73:c4:a2:71:71:78:30:fa:db:a8: 0e:f6:12:3c:49:b3:cf:a6:14:70:e9:a6:0e:bf:ca: 0d:f3:69:6b:26:27:3e:cc:ee:2e:a5:9b:fc:16:f4: 79:44:b9:8b:6e:16:d6:f2:fd:37:38:c9:ec:6a:cb: 93:53:e3:fe:1f:b0:c1:09:8b:e4:c1:de:64:c8:4e: fe:1f:3f:0f:f8:b4:ce:b7:39:b2:27:ad:26:19:0f: 81:a8:55:54:08:a1:fd:4a:1e:3f:fa:db:d1:0c:0b: 62:8e:67:6c:ba:45:09:09:97:a6:e6:93:d0:fe:73: 98:cf:77:9f:ed:8e:fc:c2:48:42:a4:38:6b:35:c7: 06:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EF:34:09:43:9E:53:D7:3B:89:B5:01:DF:B4:EE:5E:64:76:E3:58 X509v3 Authority Key Identifier: keyid:BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:77:ff:81:04:c5:1b:50:ab:21:7f:7d:7b:c0:b9:4e:d4:a9: 76:fc:4b:dc:e3:aa:d0:35:eb:d2:79:61:1e:cc:5b:a0:f5:b7: 42:7c:43:3a:3c:40:7f:6a:e9:45:0e:e6:1e:9b:99:96:0d:af: 90:eb:1c:5a:9c:66:8e:44:f4:c4:1b:f8:5b:3c:54:e6:33:68: 0d:c9:59:3d:6d:30:98:ca:60:b2:95:77:65:c2:73:c4:dc:3b: d1:0a:ba:b8:14:9e:e8:df:47:65:38:2c:a6:c2:bf:6a:90:ca: ce:53:51:7c:25:e3:59:75:48:8c:72:d5:88:c3:f3:ab:69:cf: d6:9d:b0:c9:60:af:a5:14:69:a0:7e:fd:6b:f6:01:73:4d:a6: 9a:e5:0e:72:9b:17:57:6d:16:58:26:01:e0:e4:03:f9:5c:29: 4e:45:26:19:47:4b:af:0a:bd:72:e8:a8:d5:2c:c7:f0:ed:5d: 54:83:95:61:c5:d3:b4:ea:ea:46:9d:e5:0f:9f:20:ce:55:9e: da:b4:79:2f:8e:69:a8:25:5a:fc:6f:11:e9:7a:b3:8c:e7:7f: b0:72:f5:dd:b3:3f:c8:8a:69:98:86:a5:4a:64:bd:2a:4b:6b: 98:0d:32:55:83:62:3c:ab:94:64:de:e6:07:c6:48:c8:f1:61: fb:7c:21:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iAhtsp9fXQ/SBWGzQUGQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODFiMjRhNmQ2MDMwYmYwODhkZWEzMGM5YTU5MzJmZWJk YzZhN2MwHhcNMjYwMTI1MTkwMTA4WhcNMjYwMTI2MTkwMTA4WjAzMTEwLwYDVQQD EyhhZmVmMzQwOTQzOWU1M2Q3M2I4OWI1MDFkZmI0ZWU1ZTY0NzZlMzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yXT/3GjGAEROCDfZkOmLKqaVpl7 J3bpEHGCvWprt3iHxfsZjYjS2Pf5EW8dJ48O7m6+n8UJMSex7GnMjgBjvTdOCVhy PiqiCHlgv+3hQikpqPQg9UTdVkNobZzdmD8JtruKkDplVKGYB2GwHry8mh1n153w OCY53O7tynPEonFxeDD626gO9hI8SbPPphRw6aYOv8oN82lrJic+zO4upZv8FvR5 RLmLbhbW8v03OMnsasuTU+P+H7DBCYvkwd5kyE7+Hz8P+LTOtzmyJ60mGQ+BqFVU CKH9Sh4/+tvRDAtijmdsukUJCZem5pPQ/nOYz3ef7Y78wkhCpDhrNccGlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/vNAlDnlPXO4m1Ad+07l5kduNYMB8GA1UdIwQY MBaAFLqBskptYDC/CI3qMMmlky/r3Gp8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83MDAzMzMtYWE5Yy00YmQzLTgyMDQt NDhjZDA1ZWNhNzM2LzEvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS83MDAzMzMtYWE5Yy00YmQzLTgyMDQtNDhjZDA1ZWNhNzM2 LzEvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlHf/gQTF G1CrIX99e8C5TtSpdvxL3OOq0DXr0nlhHsxboPW3QnxDOjxAf2rpRQ7mHpuZlg2v kOscWpxmjkT0xBv4WzxU5jNoDclZPW0wmMpgspV3ZcJzxNw70Qq6uBSe6N9HZTgs psK/apDKzlNRfCXjWXVIjHLViMPzq2nP1p2wyWCvpRRpoH79a/YBc02mmuUOcpsX V20WWCYB4OQD+VwpTkUmGUdLrwq9cuio1SzH8O1dVIOVYcXTtOrqRp3lD58gzlWe 2rR5L45pqCVa/G8R6XqzjOd/sHL13bM/yIppmIalSmS9KktrmA0yVYNiPKuUZN7m B8ZIyPFh+3wh6g== -----END CERTIFICATE-----Generated at Mon Jan 26 06:07:17 2026 by rpki-client